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I. Basis of the report 

1 . With regard to the elements of the international application (Replacement sheets which have been furnished to 
the receiving Office in response to an invitation under Article 14 are referred to in this report as "originally filed" 
and are not annexed to this report since they do not contain amendments (Rules 70. 16 and 70. 17)): 

Description, Pages 

1 -26 as originally filed 

Claims, Numbers 

1-18 filed with telefax on 02.02.2005 

Drawings, Sheets 

1 £-3/3 as originally filed 

2. With regard to the language, all the elements marked above were available or furnished to this Authority in the 
language in which the international application was filed, unless otherwise indicated under this item. 

These elements were available or furnished to this Authority in the following language: , which is: 

□ the language of a translation furnished for the purposes of the international search (under Rule 23.1 (b)). 

□ the language of publication of the international application (under Rule 48.3(b)). 

□ the language of a translation furnished for the purposes of international preliminary examination (under 
Rule 55.2 and/or 55.3). 

3. With regard to any nucleotide and/or amino acid sequence disclosed in the international application, the 
international preliminary examination was carried out on the basis of the sequence listing: 

□ contained in the international application in written form. 

□ filed together with the international application in computer readable form. 

□ furnished subsequently to this Authority in written form. 

□ furnished subsequently to this Authority in computer readable form. 

□ The statement that the subsequently furnished written sequence listing does not go beyond the disclosure 
in the international application as filed has been furnished. 

□ The statement that the information recorded in computer readable form is identical to the .written sequence 
listing has been furnished. 

4. The amendments have resulted in the cancellation of: 

□ the description, pages: 

□ the claims, Nos.: 

□ the drawings, sheets: 
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5. □ This report has been established as if (some of) the amendments had not been made, since they have 

been considered to go beyond the disclosure as filed (Rule 70.2(c)). 

(Any replacement sheet containing such amendments must be referred to under item 1 and annexed to this 
report.) 

6. Additional observations, if necessary: 

V. Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial applicability; 
citations and explanations supporting such statement 



1. Statement 
Novelty (N) 

Inventive step (IS) 

Industrial applicability (IA) 



Yes: Claims 

No: Claims 

Yes: Claims 

No: Claims 

Yes: Claims 

No: Claims 



1-18 
1-18 
1-18 



2. Citations and explanations 
see separate sheet 
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Re Item V 

Reasoned statement with regard to novel t y, inventive step or industrial applicability; 
citations and explan ations supporting such statement 

1 Reference is made to the following document: 

D1: N.Asokan et al, "Authenticating public terminals", Computer networks 31 (1999), 
Elsevier, pages 861-870 

2 The present application does not meet the criteria of Article 33(1 ) PCT, because the 
subject-matter of claim 1 does not involve an inventive step in the sense of Article 
33(3) PCT. 

2.1 The document D1 is regarded as being the closest prior art to the subject-matter of 
claim 1 , and discloses (the references in parentheses applying to this document)a 
method (see the method described in section 3.3 for the rest of the mapping) being 
triggered by a request for linking (it is implicit that the issuance of the 
challenge/response pairs must be performed upon some request, either an invitation 
of the server or a request of the client. This request is de facto a request "for linking" 
the user home base with the untrusted terminal at a later stage. It is noted that the 
request of step 1 is posterior to the step of selecting the challenge/response pair and 
is thus not triggering this particular step) comprising the following steps: 

- selecting a first linking information and a second linking information, the first linking 
information matching to the second linking information (the challenge sent on step 3 
is a first linking information selected by the server and the challenge/response pairs 
sent to the user home base before his travel constitute the second linking information 
selected by the server. The first linking information matches the second linking 
information in that it is included in the second linking information). 

-sending from the server the first linking information to the first device and the second 
linking information to the second device (see above, the first device is the untrusted 
public terminal and the second device is the trusted home base) 

- presenting by the first device the first linking information and by the second device 
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the second linking information (the challenge sent on step 3 is presented on the 
untrusted terminal at step 4 and the challenge/response pair are presented at the 
home base since they are printed by the user) 

- entering into the first device an indication of the matching of the first linking 
information and the second linking information (the user types in the response 
corresponding to the challenge in the untrusted terminal by looking it up in the list of 
challenge/response pairs) 

- based on the entered indication of the matching, sending to the server a matching 
confirmation for confirming the matching to the server (step 6 : the untrusted terminal 
sends the response to the server as a confirmation of the matching) 

2.2 The subject-matter of claim 1 differs thus from what is known from D1 in the step of 
associating a first characteristic of the first device and a second characteristic of the 
second device based upon the received matching information. 

2.3 The differentiating feature of associating a characteristic of the first device and a 
characteristic of the second device based on the received matching information is 
considered to require technical considerations in that the association is made by the 
server (e.g. by correlating the characteristics in a table, see description page 7, lines 
1 1-13). However this differentiating feature does not involve any technical effect and 
as a consequence does not solve any objective technical problem. 

It is noted in particular that in a particular embodiment this association may only 
serve the purpose of carrying further processing of a statistical, commercial 
(charging) or legal nature (see page 3, lines 6-8 or page 8, lines 8-9). Therefore, this 
differentiating feature does not involve a technical contribution over the prior art 
document D1 . 

2.4 Consequently, the subject-matter of claim 1 does not involve an inventive step. 

3 Independent claims 1 0 and 1 8 define a server comprising means to implement 

selected steps of method claim 1 and a computer program product comprising code 
adapted to execute the steps of method claim 1 . Same objections thus apply to these 
claims. 
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4 Dependent claims 2-8, 10, 12-15 do not appear to contain any additional features 
which, in combination with the features of any claim to which they refer, meet the 
requirements of the PCT with respect to inventive step, the reasons being as follows: 

4.1 Claims 2-4, 6-8, 11-13 and 15-17 do not appear to contain features that confer a 
technical contribution over the prior art document D1 to the claimed subject-matter. 
The fact that the association is triggered by a request for authentication does not 
provide any technical effect to the association (it is also to be noted that a request for 
authentication is also present in D1, see step 1 of the message flow of paragraph 
3.3). The mere fact that the first characteristic relates to an access legitimization 
does not have any technical effect. Further specifications of what consitute the linking 
information and the confirmation data do not confer a technical effect to the method 
as a whole since the only effect of the method as a whole remains that the 
characteristics of the first and second devices are associated. 

4.2 Claims 3 and 14 specify that access to an institution is granted to/via the second 
device based on the association of the first characteristic relating to an access 
legitimization and the second characteristic comprising an identifier identifying the 
second device. The feature of granting access to an institution based on the 
confirmation of the matching of two linking informations is already implicitly known 
from D1 where access to a server from a public untrusted terminal is granted once 
authentication is performed (see paragraph 2). In the embodiment of section 3.3, the 
home base plays the role of a second trusted device participating in this 
authentication which permits a trusted path to be established between the user and 
the server through the untrusted public terminal. It appears that the feature of 
granting access to an institution based on an association between characteristics of 
devices, which association is carried out once authentication based on the matching 
of two linking informations has been confirmed does not contribute further to the 
technical character of the method because the intermediary step of associating the 
devices has apparently no technical contribution over the prior art document D1 . 



Form PCT/Separate Sheet/409 (Sheet 3) (EPO-April 1997) 



10/530829 

R17307-TPF JQ-j; 



l^ec'dPCT/PTC 09 APR 2005 



27 
[Claims] 



1 . A method for linking of a first characteristic of a first device (PP1 ,PP2) 
and a second characteristic of a second device (NP1,NP2) by a 
5 server (S1,AS2), the method being triggered by a request (50) for 

linking and comprising the following steps of: 

- selecting (75) a first linking information and a second linking 
information, the first linking information matching to the second 
linking information, 

1 0 - sending (1 00, 1 50) from the server (S1 ,AS2) the first linking 

information to the first device (PP1,PP2) and the second linking 
information to the second device (NP1,NP2), 

- presenting (200,250) by the first device (PP1 ,PP2) the first linking 
information and by the second device (NP1,NP2) the second 

15 linking information, 

- entering (300) into the first device (PP1.PP2) an indication of the 
matching of the first linking information and the second linking 
information, 

- based on the entered indication of the matching, sending (400) to 
20 the server (S1 ,AS2) a matching confirmation for confirming the 

matching to the server (S1 ,AS2), 

- associating (450) the first characteristic and the second 
characteristic based on the received matching confirmation. 



25 2. The method according to claim 1 , wherein the method is used for 
authentication, the request (50) for linking is a request for 
authentication and the first device (PP1,PP2) is a trusted device, 
further comprising the step of stating the association (450) by an 
authentication assertion. 

30 

3. The method according to claim 2, wherein the authentication 
assertion is sent for granting access. 
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The method according to any of the preceding claims, wherein the 
first device (PP1 ,PP2) is a trusted device and the first characteristic 
relates to an access legitimization legitimating the trusted device for 
accessing a first institution. 

The method according to claim 4, wherein the second characteristic 
comprises an identifier identifying the second device (NP1.NP2) and 
access to a second institution is granted to or via the second device 
(NP1,NP2) based on the associating (450) of the first characteristic 
relating to the access legitimization and the second characteristic 
comprising the identifier, the second institution being identical to or 
different from the first institution. 

The method according to any of the preceding claims, wherein the 
first linking information and the second linking information comprise 
one or more randomly generated symbols. 

The method according to any of the preceding claims, wherein the 
first linking information is identical to the second linking information. 

The method according to any of the preceding claims, wherein the 
associating (450) is based on a verification for correctness of 
confirmation data entered into the first device (PP1 ,PP2). 

The method according to claim 8, wherein the entered confirmation 
data comprises at least one of 

(a) a Personal Identification Number, 

(b) a password, 

(c) an indication for additional information being presented in 
parallel to the first linking information or second linking 
information, the additional information being 
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distinguishable from the first linking information and the 
second linking information, and 
(d) data being computed on the base of the first linking 
information and/or the second linking information. 

A server (S1 ,AS2) usable for linking of a first characteristic of a first 
device (PP1 ,PP2) and a second characteristic of a second device 
(NP1,NP2), the server (S1,AS2) comprising a receiving unit for 
receiving messages, a transmitting unit for sending messages, and a 
processing unit for processing messages and information, wherein 
the receiving unit is adapted to receive a request (50) for linking, the 
processing unit is adapted to be triggered by the received request 
(50) for linking and to select a first linking information and a second 
linking information, the first linking information matching to the second 
linking information, the transmission unit is adapted to send the first 
linking information to the first device (PP1,PP2) and the second 
linking information to the second device (NP1.NP2), the receiving unit 
is adapted to receive a matching confirmation from the first device 
(PP1,PP2), the matching confirmation confirming to the processing 
unit the matching of the first linking information presented by the first 
device (PP1,PP2) and the second linking information presented by 
the second device (NP1.NP2), and the processing unit is adapted to 
execute an associating (450) of the first characteristic and the second 
characteristic based on the received matching confirmation. 

The server (S1,AS2) according to claim 10, wherein the server 
(S1,AS2) is used for authentication, the request (50) for linking is a 
request for authentication and the first device (PP1.PP2) is a trusted 
device, the processing unit being further adapted to state the 
association (450) by an authentication assertion. 
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12. The server (S1.AS2) according to claim 11, wherein the transmission 
unit is adapted to send the authentication assertion for granting 
access. 



5 1 3. The server (S1 ,AS2) according to any of the claims 1 0 to 1 2, wherein 
the first device (PP1 ,PP2) is a trusted device and the first 
characteristic relates to an access legitimization legitimating the 
trusted device for accessing a first institution. 

10 14. The server (S1,AS2) according to claim 13, wherein the second 

characteristic comprises an identifier identifying the second device 
and, based on the associating (450) of the first characteristic relating 
to the access legitimization and the second characteristic comprising 
the identifier, the processing unit is adapted to generate an access 

1 5 assertion for granting to or via the second device (NP1 ,NP2) access 

to a second institution being identical or different from the first 
institution, and the transmission unit is adapted to send the access 
assertion to the second device (NP1,NP2) or the second institution or 
to an entity supporting the second device (NP1.NP2) or the second 

20 institution for granting access. 

15. The server (S1 ,AS2) according to any of the claims 10 to 14, wherein 
the processing unit is adapted to select the first linking information 
and the second linking information to comprise one or more randomly 

25 generated symbols. 

16. The server (S1,AS2) according to any of the claims 10 to 15, wherein 
the processing unit is adapted to select the first linking information 
being identical to the second linking information. 

30 

17. The server (S1 ,AS2) according to any of the claims 1 0 to 1 6, wherein 
the processing unit is adapted to execute the associating (450) of the 



31 



first characteristic and the second characteristic based on a 
verification for correctness of confirmation data entered into the first 
device (PP1.PP2). 

A computer program usable for linking of a first characteristic of a first 
device (PP1 ,PP2) and a second characteristic of a second device 
(NP1,NP2), the computer program being loadable into a processing 
unit of a server (S1 ,AS2), wherein the computer program comprises 
code adapted to be triggered by a request (50) for linking, to select a 
first linking information and a second linking information, the first 
linking information matching to the second linking information, to 
initialize a sending of the first linking information to the first device 
(PP1.PP2) and a sending of the second linking information to the 
second device (NP1,NP2), and to execute an associating (450) of the 
first characteristic and the second characteristic based on a matching 
confirmation received from the first device (PP1,PP2), the matching 
confirmation confirming to the computer program the matching of the 
first linking information presented by the first device (PP1,PP2) and 
the second linking information presented by the second device 
(NP1,NP2). 
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• [Claims] 

1. A method for linking of a first* characteristic of a first device (PP1.PP2) 
and a second characteristic of a second device (NP1,NP2) by a 
5 server (S1,AS2). the method being triggered by a request (50) for 

linking and comprising the following steps of: 

- selecting (75) a first linking information and a second linking 
information, the first linking information matching to the second 
linking Information, 

10 - sending (100,150) from the server (S1,A52) the first linking 

information to the first device (PP1 t PP2) and the second linking 
information to the second device (NP1.NP2), 

- presenting (200,250) by the first device (PP1.PP2) the first linking 
information and by the second device (NP1 ,NP2) the second 

15 linking information, 

- entering (300) into the first device (PP1.PP2) an indication of the 
matching of the first linking information and the second linking 
information, 

- based on the entered indication of the matching, sending (400) to 
20 the server (S1 ,AS2) a matching confirmation for confirming the 

matching to the server (S1 ,AS2), 

- associating (450) the first characteristic and the second 
characteristic based on the received matching confirmation. 

25 2. The method according to claim 1 , wherein the method is used for 
authentication, the request (50) for linking is a request for 
authentication and the first device (PP1,PP2) is a trusted device, 
further comprising the step of stating the association (450) by an 
authentication assertion. 
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The method according to claim 2 f wherein the authentication 
assertion is sent for granting access. 
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4. The method according to any of the preceding claims, wherein the 
first device (PP1.PP2) is a trusted device and the first characteristic 
relates to an access legitimization legitimating the trusted device for 

5 accessing a first institution. 

5. The method according to claim 4, wherein the second characteristic 
comprises an identifier identifying the second device (NP1 r NP2) and 
access to a second institution is granted to or via the second device 

1 0 (NP1 ,NP2) based on the associating (450) of the first characteristic 

relating to the access legitimization and the second characteristic 
comprising the identifier, the second institution being identical to or 
different from the first institution. 

15 6. The method according to any of the preceding claims, wherein the 
first linking information and the second Unking information comprise 
one or more randomly generated symbols. 

7. The method according to any of the preceding claims, wherein the 
20 first linking Information is identical to the second linking information. 

B. The method according to any of the preceding claims, wherein the 
associating (450) is based on a verification for correctness of 
confirmation data entered into the first device (PP1.PP2). 

25 

9. The method according to claim 8, wherein the entered confirmation 
data comprises at least one of 

(a) a Personal Identification Number, 

(b) a password; 

3° (c) an indication for additional information being presented in 

parallel to the first linking information or second linking 
information, the additional Information being 
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distinguishable from the first linking Inforrriatidn and the 
second linking information, and 
(d) data being computed on the base of the first linking 
information and/or the second linking information. 

5 . 

10. A server (S1 ,AS2) usable for linking of a first characteristic of a first 
device (PP1 ,PP2) and a second characteristic of a second device 
(NP1.NP2), the server (S1 , AS2) comprising a receiving unit for 
receiving messages, a transmitting unit for sending messages, and a 

10 processing unit for processing messages and information, wherein 

the receiving unit is adapted to receive a request (50) for linking, the 
processing unit is adapted to be. triggered by the received request 
(50) for linking and to select a first linking information and a second 
linking information, the first linking information matching to the second 

15 linking information, the transmission unit is adapted to send the first 

linking information to the first device (PP1.PP2) and the second 
linking information to the second device (NP1 ,NP2), the receiving unit 
is adapted to receive a matching confirmation from the first device 
(PP1 f PP2), the matching confirmation confirming to the processing 

20 unit the matching of the first linking Information presented by the first 

device (PP1.PP2) and the second linking Information presented by 
the second device (NP1,NP2), and the processing unit is adapted to 
execute an associating (450) of the first characteristic and the second 
characteristic based on the received matching confirmation. 

25 

1 1 . The server (S1 1 AS2) according to claim 1 0, wherein the server 
(S1.AS2) is used for authentication, the request (50) for linking is a 
request for authentication and the first device (PP1.PP2) Is a trusted 
device, the processing unit being further adapted to state the 

30 association (450) by an authentication assertion. 



AMENDED SHEET n nnn 



02-02-2005 13T55 FAX +49 2407 575400 ERICSSON RESEARCH EP0310780 

) ... . • . 

P17307-TPF 

1 

, . * • ... ' 

^ 12. The server (SI ,AS2) according to claim 11, wherein the transmission 

unit is adapted to send the authentication assertion for granting 
access. 

5 13. The server (S1 ,AS2) according to any of the claims 1 0 to 1 2, wherein 
the first device (PP1,PP2) is a trusted device and the first 
characteristic relates to an access legitimization legitimating the 
trusted device for accessing a first institution. 

10. 14. The server (S1 ,AS2) according to claim 13, wherein the second 

characteristic comprises an identifier identifying the second device 
and, based on the associating (450) of the first characteristic relating 
to the access legitimization and the second characteristic comprising 
the identifier, the processing unit is adapted to generate an access 
15 assertion for granting to or via the second device (NP1.NP2) access 

to a second institution being identical or different from the first 
institution, and the transmission unit is adapted to send the access 
assertion to the second device (NP1,NP2) or the second institution or 
to an entity supporting the second device (NP1.NP2) or ttie second 
20 institution for granting access. 

15. The server (S1 ,A32) according to any of the claims 10 to 14, wherein 
the processing unit is adapted to select the first linking information 
and the second linking information to comprise one or more randomly 

25 generated symbols. 

16. The server (S1.AS2) according to any of the claims 10 to 15, wherein 
the processing unit is adapted to select the first linking information 
being identical to the second linking information. 
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17. The server (S1,AS2) according to any of the claims 10 to 16, wherein 
the processing unit is adapted to execute the associating (450) of the 
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first characteristic and the second characteristic based on a 
verification for correctness of confirmation data entered Into the first 
device (PP1.PP2). 

5 18. A computer program usable for linking of a first characteristic of a first 
device (PP1.PP2) and a second characteristic of a second device 
(NP1.NP2), the computer program being loadable into a processing 
unit of a server (S1 , AS2), wherein the computer program comprises 
code adapted to be triggered by a request (50) for linking, to select a 

10 first linking information and a second linking information, the first 

(Inking information matching to the second linking information, to 
" initialize a sending of the first linking information to the first 

(PP1.PP2) and a sending of the second linking information to the 
second device (NP1 ,NP2), and to execute an associating (450) of the 

15 first characteristic and the second characteristic based on a matching 

. confirmation received from the first device (PP1 ,PP2) f the matching 
confirmation confirming to the computer program the matching of the 
first linking information presented by the first device (PP1,PP2) and 
the second linking information presented by the second device 

20 (NP1.NP2). 
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